Identity Provider (IdP) Managed Access, now generally available!

Lekshmi Unnithan

Hi Community, 

The IdP Managed Access feature aims to help SysAdmins scalably manage user access and permissions in Smartsheet through their own Identity Provider (IdP). By mapping IdP user roles—such as Finance Project Manager or Marketing Operations Lead—to an IdP-managed group in Smartsheet, SysAdmins can assign access and permissions to specific Smartsheet items based on these roles. If someone switches roles in the IdP, Smartsheet will automatically revoke access to items associated with the old role and grant permissions for the new role. We also provide basic SysAdmin controls to help create and manage IdP groups, an intake form for requesting new IdP groups, and basic settings to manage the access permissions on Smartsheet items associated with various IdP roles.

Note: 

• IdP-managed groups are set at the domain level and vary from regular Smartsheet groups.
• Only the plans where the domain is validated and activated can create IdP-managed groups. Other plans where the domain is only validated can share Smartsheet items to existing IdP groups.
• SAML is required to enable this feature.

This is available for Enterprise plan customers in the Commercial US and Commercial EU instances of Smartsheet.

To learn more, please check out our help articles: Admin Center: Configure IdP-managed access, Admin Center: Manage IdP role-based groups, Prepare your IdP for IdP-role based groups

You can also stay informed by Subscribe to receive product release updates for curated news of recently released product capabilities and enhancements for the platform of your choosing, delivered to your inbox. As new releases occur, you will receive a weekly email with news of what's released every Tuesday. 

Cheers,

Lekshmi Unnithan

Senior Product Marketing Manager